Description
Unspecified vulnerability in the XSL Content portlet in Liferay Portal Community Edition (CE) 5.x and 6.x before 6.0.6 GA, when Apache Tomcat is used, allows remote attackers to execute arbitrary commands via unknown vectors.
Remediation
References
Related Vulnerabilities
Oracle HTTP Server Out-of-bounds Write Vulnerability (CVE-2022-23943)
FrontAccounting Multiple SQL Injection Vulnerabilities (CVE-2014-3973)
Piwigo Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2018-7724)
Joomla! Core 3.x.x Information Disclosure (3.8.0 - 3.9.13)
WordPress Plugin ALO EasyMail Newsletter Cross-Site Scripting (2.8.1)